This repository has been archived by the owner on Jun 27, 2024. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 0
60 lines (51 loc) · 1.68 KB
/
ci.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
name: CI
on:
pull_request:
jobs:
validate:
runs-on: ubuntu-latest
strategy:
matrix:
environment: [lab, prod]
env:
SOPS_AGE_KEY: ${{ secrets.SOPS_AGE_PRIVATE_KEY }}
steps:
- name: Checkout code
uses: actions/checkout@master
- name: Install pre-requisites
run: |
yarn
helm plugin install https://github.com/jkroepke/helm-secrets && helm secrets patch unix
sudo wget -O /usr/bin/sops https://github.com/mozilla/sops/releases/download/v3.7.3/sops-v3.7.3.linux.amd64
sudo wget -O /usr/bin/kubescape https://github.com/kubescape/kubescape/releases/download/v2.3.8/kubescape-ubuntu-latest
sudo chmod a+x /usr/bin/sops
sudo chmod a+x /usr/bin/kubescape
- name: Download helm chart dependencies
run: yarn deps:all
- name: Validate values
run: yarn validate-values:all
- name: Lint charts
run: yarn lint:all ${{ matrix.environment }}
- name: Render charts
run: yarn render:all ${{ matrix.environment }}
- name: Scan all charts for vulnerabilities
run: |
yarn scan:all ${{ matrix.environment }}
e2e-lab-local:
uses: homecentr/e2e/.github/workflows/run-e2e.yml@master
needs:
- validate
with:
environment: lab
client: local
secrets:
sops_age_key: ${{ secrets.SOPS_AGE_PRIVATE_KEY }}
e2e-lab-remote:
uses: homecentr/e2e/.github/workflows/run-e2e.yml@master
needs:
- validate
with:
environment: lab
client: remote
secrets:
sops_age_key: ${{ secrets.SOPS_AGE_PRIVATE_KEY }}